Cyber & Information Security Analyst

Cyber & Information Security Analyst

Hello! Thanks for stopping by. Let us tell you about all the great reasons to join us here at Yorkshire Water:

We offer a competitive salary, depending on experience (£36,538 - £45,673)

 Annual incentive related bonus (£1000 maximum bonus opportunity for the performance year)
Attractive pension scheme (up to 12% company contribution)
Development opportunities in line with the Cyber & Information Security Analyst progression plan
25 days annual leave plus bank holidays – plus an extra wellness day!
Life assurance cover of 4 times pensionable salary
A great benefits package – choose from health cash plan scheme, critical illness insurance, dental insurance, life assurance flex and partner cover.
Retail savings scheme
Online GP service, cycle to work scheme, gym membership discounts and many more!

Location: Buttershaw / Hybrid Working (1-2 days in the office a week – Bradford)

Work type: Permanent. 37 hours per week, Monday – Friday. There will also be a periodic requirement to act as Standby on-call.

We have an exciting opportunity for a Cyber & Information Security Analyst to join the Tech team at Yorkshire Water and be a part of helping Yorkshire Water to provide the best service to our customers. Could this be you?

What we do:

Everyone has an idea of what a water company does. Here in Yorkshire, we make sure that over million people living in the region and the millions of people who visit our region each year, can rely on our services, and have clean and safe drinking water on tap and that their wastewater is taken away. But for us, it’s so much more than this.

We look after communities, protect the environment, and plan to look after Yorkshire’s water, today, tomorrow 24/7, 365 days a year. We provide essential water and wastewater services to every corner of the Yorkshire region, and play a key role in the region’s health, wellbeing, and prosperity.

New environmental legislation, unprecedented levels of investment and changing expectations from customers means that this is an exciting time to discover opportunities within the water industry. The Tech function is a key part of how we plan to meet the changing expectations of customers and regulators.

The Yorkshire Water Cyber Security Team - where protecting critical infrastructure meets camaraderie and curiosity!

We're a dynamic crew of professionals who blend technical wizardry with real-world vigilance to keep our systems safe. We have a varied range of skillsets in our team including Security Operations, intrusion detection, vulnerability scanning, advanced threat protection, Operational Technology, Physical Security and Governance Risk and Compliance specialists to name but a few.

We cover every angle of digital defence. Whether you're decoding threat intel, crafting policy, leading tabletop exercises, or crafting clever security awareness campaigns, there's never a dull moment here. You‘ll be exposed to leading cyber security technologies & practices in an environment where your opinion matters and you have real freedom to approach problems your own way.

We’re a team that thrives on collaboration, learning, and a bit of fun. We celebrate wins together. And yes, we’ve debated the realism of hacking scenes in Wargames & Mr Robot. If you’re wondering, our office isn't in the basement, and we don’t regularly wear hoodies and sunglasses (in the office). So, if you're ready to join a team that’s professional, sharp, friendly and supportive, come, join us and let’s make Yorkshire Water safer together.

Where you fit in:

As a Cyber & Information Security Analyst you will:

Advise on security strategies to manage risks and ensure compliance with standards

Contribute to the development of security policies, standards, and guidelines
Conduct vulnerability assessments, risk analysis, and system accreditation
Investigate major security breaches and recommend control improvements
Select and apply appropriate penetration testing approaches; provide expert advice and reporting
Lead vulnerability assessment activities and recommend tools, actions, and controls
Perform risk assessments, identify mitigation strategies, and report findings
Support compliance with information and cyber-physical security regulations
Monitor and report on the effectiveness of security controls
Recommend actions to address risks related to data and cyber-physical systems
Maintain and improve operational security processes and respond to support requests
Provide guidance on technical and procedural security for digital and physical assets
Investigate security incidents and support implementation of corrective actions
Support information and cyber-physical asset management and classification

What skills & qualifications you will need:

Relevant experience in the Cyber Security field or be able to demonstrate an interest in cyber security.

Possess or be able to attain UK Government Security Check. Yorkshire Water will initiate this check if you are successful. More information on the things you will be asked about can be found here
Relevant experience and ability. We will also consider non-Cyber related experience.
Ability to work with stakeholders from different teams in Tech and the wider business
Able to explain complex cyber security information to non-technical colleagues.

You will also benefit from having:

Relevant industry recognised Cyber Security qualification and / or a degree in Information Security or Cyber Security

Knowledge of information security frameworks & standards.
Previous experience in cyber / information security roles.
Experience in information security incident response & investigations.
A good knowledge of General Data Protection regulations (UK-GDPR)
Experience working with legal, audit and compliance teams.
Penetration testing support.
Risk assessment (including supplier risk assessment), control recommendation, mitigation and remediation.

On call Requirement:

There will be an element of compensated periodic on-call in this roll. Once you are settled in role, you will join the on-call standby rota. Because the bad guys never sleep.Although we operate 24 hours a day, 365 days a year, it’s important to us that we support flexible working patterns and job share options (when we can), to help you make the best of both your work and home life. We know that juggling childcare responsibilities or getting that ideal work/life balance isn’t always easy!

Do we sound like your cup of tea?

If you’ve got experience in Cyber & Information Security and want to help us deliver great service for our customers whilst looking after the environment, then be sure to apply today to find out what a career with Yorkshire Water can offer you.

If successful for the role, you will be required to undergo pre-employment checks that will include a Basic Disclosure Check, carried out through a Third-Party Company, prior to commencing employment. You will also be required to go through the security vetting process for a Security Check clearance.

All our roles are subject to a medical questionnaire, and further medicals when required.

We are committed to removing barriers and ensuring our recruitment process is accessible to everyone. We offer a range of adjustments to make your application experience as comfortable and straightforward as possible.

If you have an accessibility need, disability, or condition that requires changes to the recruitment process, please include this information in your application. We will then discuss any reasonable adjustments required.

Kelda Group reserve the right to close this position before the published closing date, should the need occur. We therefore advise that you complete and submit your application as soon as possible.

Closing date for this role is 8th September 2025

No agencies please.